signer

Documentation

Index

• func NewCloudKmsSigner(keyName string, digestAlg DigestAlgorithm) (attestlib.Signer, error)
• type DigestAlgorithm
• type ImageVulnerabilities
• type Signer
  • func New(client metadata.ReadWriteClient, cSigner attestlib.Signer, noteName string, ...) Signer
  • func (s Signer) SignImage(image string) error

Functions

func NewCloudKmsSigner

func NewCloudKmsSigner(keyName string, digestAlg DigestAlgorithm) (attestlib.Signer, error)

Types

type DigestAlgorithm

type DigestAlgorithm string

const (
	SHA256 DigestAlgorithm = "SHA256"
	SHA384 DigestAlgorithm = "SHA384"
	SHA512 DigestAlgorithm = "SHA512"
)

type ImageVulnerabilities

type ImageVulnerabilities struct {
	ImageRef        string
	Vulnerabilities []metadata.Vulnerability
}

ImageVulnerabilities is an input for running vulnerability policy validation.

type Signer

type Signer struct {
	// contains filtered or unexported fields
}

A signer is used for creating attestations for an image.

func New

func New(client metadata.ReadWriteClient, cSigner attestlib.Signer, noteName string, project string, overwrite bool) Signer

Creating a new signer object.

func (Signer) SignImage

func (s Signer) SignImage(image string) error

SignImage signs an image without doing any policy check. Returns an error if creating an attestation fails.